1503A – Chrome – ui::AXTree::Unserialize use-after-free

July 17, 2015 007admin Leave a comment

Posted by Berend-Jan Wever on Jul 17

T*L;DR*
After 60 day deadline has passed, I am releasing details on an unfixed
use-after-free vulnerability in Chrome’s accessibility features, which are
disabled by default. The issue does not look exploitable.

*More details*
http://berendjanwever.blogspot.nl/2015/07/1503a-chrome-uiaxtreeunserialize-use.html

*Chromium bug*https://code.google.com/p/chromium/issues/detail?id=479743

Cheers,

SkyLined

—- Gratuitous ASCII…

007 Software

1503A – Chrome – ui::AXTree::Unserialize use-after-free

Leave a Reply Cancel reply

Software and Security Information